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closed in accordance with the practice under Ex parte Quayle, 1935 CD. 1 1 , 453 O.G. 213. 
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DETAILED ACTION 

1 . This Office Action is in response to the amendment filed on February 1 6, 201 1 . 

2. Claims 21 -32 and 34-39 are pending. 

Response to Arguments 

3. Applicant's arguments filed 2/1 6/201 1 have been fully considered but they are 
not persuasive. The Applicant argues Fangman and Hughes fail to disclose 
downloading the entire configuration data each time the device is initialized (pages 12- 
14). The Examiner respectfully disagrees. 

Fangman discloses downloading the entire configuration from the TFTP Server 
as shown in Step 404, Figure 4A; Paragraph bridging Columns 15 and 16). The 
Applicant argues Hughes teaches away from downloading in a single step. In the 
previous rejection, Fangman is used to exclusively teach the limitation of downloading 
the entire configuration, not Hughes. Additionally, Hughes also teaches downloading in 
a single step as the Applicant disclosed, but the Applicant argues that additional OS 
files and/or program files are downloaded later. The Applicant specification discloses 
that the "configuration data" is data used to carry out the devices intended purpose 
(paragraph 0008). Hughes downloads this "entire configuration data" upon startup of 
the device, which is configuration data sufficient to carry out the devices intended 
purpose. Hughes additionally and optionally provides the ability to download additional 
applications and OS features if so requested. This optional data is separate from the 
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"entire configuration data" or "configuration data sufficient to carry out the devices 
intended purpose. The Examiner notes that /./also teaches downloading the entire 
configuration (Figure 11b; Column 9, Lines 10-25 and Column 12, Lines 38-48) 

4. Applicant's arguments with respect to the amended limitations of Claims 21 -29 
have been considered but are moot in view of the new ground(s) of rejection. 



Claim Rejections - 35 USC §103 

5. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

6. Claim 21-29 are rejected under 35 U.S.C. 1 03(a) as being unpatentable over 
Fangman (U.S. Patent No. 6,687,245) in view of Hughes (U.S. Patent No. 6,854,009 
B1 ) and in further view of Li (U.S. Patent No. 6,01 2,088). 

As to Claims 21, 25 and 28, Fangman discloses a method of providing a VPN 
communication between two or more network devices of unknown network address at 
least a first one of which network devices does not initially know the other network 
devices internet network addresses (IP Telephones 120A and B, Figure 2), the 
method comprising: 
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providing a verification authority connected to the internet remote from the two or 
more network devices and capable of verifying the identity of the two or more internet 
network devices (SG 170, containing DHCP functionality, verifies the MAC address 
of the connected network devices. Step 510, Figure 5A); 

providing a configuration server connected to the internet remote from the two or 
more network devices and capable of supplying to each verified internet device the 
entire configuration data for that verified internet device (TFTP Server. Steps 546-556, 
Figure 5B; Column 19, Lines 60-63); 

providing each of the two or more network devices free of provision to 
permanently store the user configuration data, each of the devices containing 
configuration information only sufficient to connect the devices to an internet service 
provider to request a first IP address (Each IP Telephone upon power-on is un- 
initialized wherein it only contains information for contacting a server to retrieve 
an address. Steps 402 and 404, Figure 4; Column 15, Lines 48-59) , and using that 
first IP address to connect to the remote verification authority at a remote verification 
authority and using the designated internet address of that remote verification authority 
(DHCP lease negotiations include default gateway, SG 170. Column 16, Lines 44- 
48), and subsequently downloading from a remote configuration authority authorized by 
the remote verification authority the entire configuration data each time the device is 
initialized, for one of the two or more internet network devices, each time that device is 
initialized, reloading that device with the downloaded configuration data (After 
initialization of said IP Phones the entire configuration is downloaded from the 
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TFTP Server. Steps 402 and 404, Figure 4A; Paragraph bridging Columns 15 and 
16), 

storing the allocated internet network address of the network device at the 
verification authority (SG 170 acts as a NAT, storing public and private address 
translation tables of connected network devices. Column 8, Lines 14-24), 

repeating the process for each of the other network devices so that each of the 
other network devices downloads from the remote configuration server authorized by 
the remote verification authority the entire configuration data for that particular internet 
network device each time that particular device is initialized and reloading that particular 
device with the downloaded configuration data and storing the allocated internet 
network address for that particular device at the verification authority (Each IP 
Telephone 120 follows Steps 402-404, Figure 4A and storing the network address 
at the verification authority as discussed above.), 

and initiating a VPN communication between two or more of the network devices, 
by sending an instruction from the verification authority to one of the network devices by 
supplying to that network device the allocated internet address of at least one of the 
other network devices so that the recipient internet device can communicate with the 
other network device (SG 170 supplies the network address of a IP Telephone 120 
to a remote VPN concentrator so the remote IP Telephone can communicate. 
Figures 10A and 10B; Column 9, Lines 23-40). 

However, Fangman does not expressly disclose providing within each of the two 
or more network devices, a routine which securely contacts the remote verification 
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authority, providing the identity of the network device wherein the verification authority is 
remote from an internet service provider, wherein a configuration server is remote from 
the internet service provider and wherein the network devices create a private network 
in a downlink. 

Hughes, in the same field of endeavor, teaches providing within each of the two 
or more network devices, a routine which securely contacts the remote verification 
authority, providing the identity of the network device (Clients 132, 141 authentication 
and tokening are passed between the authentication server. Column 6, Lines 14- 
22) wherein the verification authority is remote from an internet service provider 
providing an internet connection to each of the two or more network devices 
(Authentication Server 216 contained in Server Farm 100 is located remotely from 
the Local and Regional Servers 132 and 140. Figures 1 and 2; Column 5, Lines 
24-67 and Column 6, Lines 1-13). 

At the time of invention, it would have been obvious to a person of ordinary skill 
in the art to have combined providing VPN communication between two network 
devices as taught by Fangman with providing a secure connection to the remote 
authentication server as taught by Hughes. The motivation would have been to provide 
additional security. 

Li, in the same field of endeavor, teaches wherein a configuration server is 
remote from the internet service provider providing an internet connection to each of the 
two or more network devices (The Configuration Server 410 can be located 
anywhere in the internet, accessed by its IP address. Column 13, Lines 45-49); 
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and wherein each of the two or more network devices creating a private network 
in a downlink separate from end user devices in the created private network (Internet 
Access Device 100 contains a Router 240 for creating a private network in the 
downlink for the end users. Figure 4; Paragraph bridging Columns 6 and 7). 

At the time of invention, it would have been obvious to a person of ordinary skill 
in the art to have combined providing VPN communication between two network 
devices as taught by Fangman-Hughes with having a remote configuration server and 
the network devices containing routers for creating a private network as taught by Li. 
The motivation would to allow end users in a private network to connect to each other 
via the network devices securely. 

As to Claim 22, Fangman-Hughes-Li teach the method as previously discussed 
in Claim 21 . /./further teaches wherein the two or more network devices are routers 
(Router 240. Figure 4; Paragraph bridging Columns 6 and 7). 

As to Claim 23, Fangman-Hughes-Li teach the method as previously discussed 
in Claim 21 . /./'further teaches wherein the routers form part of ADSL modems 
(Paragraph bridging Columns 6 and 7). 

As to Claim 24, Fangman-Hughes teach the method as previously discussed in 
Claim 21 . Fangman further teaches wherein the configuration data is downloaded as a 
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single transaction (Steps 402 and 404, Figure 4A; Paragraph bridging Columns 15 
and 16). 

As to Claim 26, Fangman-Hughes-Li teach the method as previously discussed 
in Claim 21 . Hughes further teaches wherein the configuration data remains unchanged 
for the duration of the network devices powered on cycle (Column 26, Lines 27-30). 

As to Claim 27, Fangman-Hughes-Li teach the method as previously discussed 
in Claim 21 . Fangman further teaches wherein the configuration data is only 
downloaded upon a power up sequence (Steps 402 and 404, Figure 4B). 

As to Claim 29, Fangman-Hughes-Li teach the method as previously discussed 
in Claim 21 . Fangman further teaches wherein a user sends a request via secure 
internet access to the remote authority to create a VPN between some or all of the 
network devices whose addresses have been stored at the remote authority (Figures 
10A and 10B). 

7. Claims 30-32 and 34-39 are rejected under 35 U.S.C. 1 03(a) as being 
unpatentable over Fangman (U.S. Patent No. 6,687,245) in view of Hughes (U.S. 
Patent No. 6,854,009 B1) in further view of L/(U.S. Patent No. 6,012,088) and in further 
view of Weldon (U.S. Patent No. 6,366,563 B1). 
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As to Claim 30, Fangman-Hughes-Li teach the method as previously discussed 
in Claim 29. 

However, Fangman-Hughes-Li do not expressly teach sending statistics for 
analysis. 

Weldon, in the same field of endeavor, teaches network devices communicating 
with a remote authority on schedule to send statistics for storage and analysis (Probing 
router, on a polling interval, collects statistics for storage and analysis. Column 
10, Figure 5; Column 10, Lines 41-55). 

At the time of invention, it would have been obvious to a person of ordinary skill 
in the art to have combined the communication method as taught by Fangman-Hughes- 
Li with sending statistics as taught by Weldon. The motivation would have been to 
enhance the performance of the VPN by analyzing performance statistics. 

As to Claim 31, Fangman-Hughes-Li-Weldon teach the method as previously 
discussed in Claim 29. Hughes further teachs wherein each of the two or more network 
devices are routers (Router 240. Figure 4; Paragraph bridging Columns 6 and 7). 

As to Claim 32, Fangman-Hughes-Li-Weldon teach the method as previously 
discussed in Claim 29. Hughes further teachs wherein the routers form part of ADSL 
modems (Paragraph bridging Columns 6 and 7). 
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As to Claim 34, Hughes Fangman-Hughes-Li-Weldon teach the method as 
previously discussed in Claim 29. Fangman further teachs wherein the configuration 
details and software are downloaded as a single transaction (Steps 402 and 404, 
Figure 4A; Paragraph bridging Columns 15 and 16). 

As to Claim 35, Fangman-Hughes-Li-Weldon teach the method as previously 
discussed in Claim 29. Hughes further teachs wherein the configuration details and 
software are lost when the network device loses power ((VPN device 144a securely 
contacts remote verification authority, Authentication Server 216, via a VPN, to 
download and store its configuration data from the Configuration Server in RAM, 
where the local configuration is lost upon power loss as is well known in the art 
when using RAM as a storage device. Column 4, Lines 14-17, Column 4, Lines 56- 
65, Column 7, Lines 55-64 and Paragraph bridging Columns 7 and 8.) 

As to Claim 36, Fangman-Hughes-Li-Weldon teach the method as previously 
discussed in Claim 29. Hughes further teachs wherein the configuration details and 
software remain unchanged for the duration of the network devices powered on cycle ( 
Column 26, Lines 27-30). 

As to Claim 37, Fangman-Hughes-Li-Weldon teach the method as previously 
discussed in Claim 29. Hughes further teachs wherein the configuration details and 
software are only downloaded upon a power up sequence (Column 7, Lines 55-64). 
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As to Claim 38, Fangman-Hughes-Li-Weldon teach the method as previously 
discussed in Claim 29. Hughes further teachs wherein the remote authority sends a 
code to at least one of the network devices which forces it to download the configuration 
details and software (A code is checked forcing the download of the configuration 
software. Column 11, Lines 9-19). 

As to Claim 39, Fangman-Hughes-Li-Weldon teach the method as previously 
discussed in Claim 29. Hughes further teachs wherein the user configuration details 
and software can be changed by a user via a secure internet connection to the remote 
authority (A user can change which profile configuration they connect to at the 
remote authority. Column 13, Lines 36-41). 

Conclusion 

8. Applicant's amendment necessitated the new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 
§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
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shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to ROBERT B. MCADAMS whose telephone number is 
(571)270-3309. The examiner can normally be reached on Monday-Thursday 5:30am- 
4pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Rupal Dharia can be reached on 571-272-3880. The fax phone number for 
the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/R. B. M./ /KEVIN BATES/ 

Examiner, Art Unit 2456 Primary Examiner, Art Unit 2456 



